Breaking News – Cyber Threats (last 6h)
Generated: 2025-11-14 12:00 PST
- Anthropic claims of Claude AI-automated cyberattacks met with doubt
BleepingComputer • 2025-11-14 10:31 • www.bleepingcomputer.com
Anthropic reports that a Chinese state-sponsored threat group, tracked as GTG-1002, carried out a cyber-espionage operation that was largely automated through the abuse of the company’s Claude Code AI model. […]
https://www.bleepingcomputer.com/news/security/anthropic-claims-of-claude-ai-automated-cyberattacks-met-with-doubt/ - North Korean Hackers Turn JSON Services into Covert Malware Delivery Channels
The Hacker News • 2025-11-14 10:25 • thehackernews.com
The North Korean threat actors behind the Contagious Interview campaign have once again tweaked their tactics by using JSON storage services to stage malicious payloads.
“The threat actors have recently resorted to utilizing JSON storage services like JSON Keeper, JSONsilo, and npoint.io to host and deliver malware from trojanized code projects, with the lure,” NVISO researchers Bart Parys, Stef
https://thehackernews.com/2025/11/north-korean-hackers-turn-json-services.html - Upcoming Speaking Engagements
Schneier on Security • 2025-11-14 09:08 • www.schneier.comThis is a current list of where and when I am scheduled to speak:
- My coauthor Nathan E. Sanders and I are speaking at the Rayburn House Office Building in Washington, DC at noon ET on November 17, 2025. The event is hosted by the POPVOX Foundation and the topic is “AI and Congress: Practical Steps to Govern and Prepare.”
- I’m speaking on “Integrity and Trustworthy AI” at North Hennepin Community College in Brooklyn Park, Minnesota, USA, on Friday, Novembe…
https://www.schneier.com/blog/archives/2025/11/upcoming-speaking-engagements-50.html - Fortinet confirms silent patch for FortiWeb zero-day exploited in attacks
BleepingComputer • 2025-11-14 09:00 • www.bleepingcomputer.com
Fortinet has silently patched a critical zero-day vulnerability in its FortiWeb web application firewall, which is now being widely exploited. […]
https://www.bleepingcomputer.com/news/security/fortinet-confirms-silent-patch-for-fortiweb-zero-day-exploited-in-attacks/ - Checkout.com snubs hackers after data breach, to donate ransom instead
BleepingComputer • 2025-11-14 08:25 • www.bleepingcomputer.com
UK financial technology company Checkout announced that the ShinyHunters threat group has breached one of its legacy cloud storage systems and is now extorting the company for a ransom. […]
https://www.bleepingcomputer.com/news/security/checkoutcom-snubs-shinyhunters-hackers-to-donate-ransom-instead/ - Researchers Find Serious AI Bugs Exposing Meta, Nvidia, and Microsoft Inference Frameworks
The Hacker News • 2025-11-14 07:20 • thehackernews.com
Cybersecurity researchers have uncovered critical remote code execution vulnerabilities impacting major artificial intelligence (AI) inference engines, including those from Meta, Nvidia, Microsoft, and open-source PyTorch projects such as vLLM and SGLang.
“These vulnerabilities all traced back to the same root cause: the overlooked unsafe use of ZeroMQ (ZMQ) and Python’s pickle deserialization,”
https://thehackernews.com/2025/11/researchers-find-serious-ai-bugs.html - US announces new strike force targeting Chinese crypto scammers
BleepingComputer • 2025-11-14 06:54 • www.bleepingcomputer.com
U.S. federal authorities have established a new task force to disrupt Chinese cryptocurrency scam networks that defraud Americans of nearly $10 billion annually. […]
https://www.bleepingcomputer.com/news/security/us-announces-new-strike-force-targeting-chinese-crypto-scammers/ - Iranian Hackers Launch ‘SpearSpecter’ Spy Operation on Defense & Government Targets
The Hacker News • 2025-11-14 06:40 • thehackernews.com
The Iranian state-sponsored threat actor known as APT42 has been observed targeting individuals and organizations that are of interest to the Islamic Revolutionary Guard Corps (IRGC) as part of a new espionage-focused campaign.
The activity, detected in early September 2025 and assessed to be ongoing, has been codenamed SpearSpecter by the Israel National Digital Agency (INDA).
“The
https://thehackernews.com/2025/11/iranian-hackers-launch-spearspecter-spy.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
